git/TheMathWizard
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

Part on authorisation finished

Browse source
This commit is contained in:
Patryk Hegenberg 2022-12-18 15:08:59 +01:00
parent 0c5e0088f7
commit 44a6d295d8
2 changed files with 26 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

12
controllers/note.php
View file

@ -6,6 +6,16 @@
$heading = "Note";
$note = $db->query('select * from notes where id = :id', ['id' => $_GET['id']] )->fetch();
$note = $db->query('select * from notes where id = :id', [
'id' => $_GET['id']
])->fetch();
if (!$note) {
abort();
}
$currentUserId = 1;
if ($note['user_id'] != $currentUserId) {
abort(Response::FORBIDDEN);
}
//dd($notes);
require "views/note.view.php";

15
index.php
View file

@ -2,14 +2,15 @@
require 'functions.php';
require 'Database.php';
require 'router.php';
$username = 'appUser';
$password = 'password';
$config = require('config.php');
$db = new Database($config['database'], $username, $password);
$id = $_GET['id'];
require 'Response.php';
//$username = 'appUser';
//$password = 'password';
//$config = require('config.php');
//$db = new Database($config['database'], $username, $password);
//$id = $_GET['id'];
// Variante 1
$query = "SELECT * FROM posts WHERE id = ?";
$posts = $db->query($query, [$id])->fetchAll(PDO::FETCH_ASSOC);
//$query = "SELECT * FROM posts WHERE id = ?";
//$posts = $db->query($query, [$id])->fetchAll(PDO::FETCH_ASSOC);
// Variante 2
//$query = "SELECT * FROM posts WHERE id = :id";
//$posts = $db->query($query, [':id' => $id])->fetchAll(PDO::FETCH_ASSOC);